Lexa Software: Nginx-ru@sysoev.ru archive

		Apache-Talk @lexa.ru
		Inet-Admins @info.east.ru
		Filmscanners @halftone.co.uk
		Security-alerts @yandex-team.ru
		nginx-ru @sysoev.ru

СТАТЬИ

ПЕРСОНАЛЬНОЕ

ПРОГРАММЫ

ПИШИТЕ
ПИСЬМА

АРХИВ :: nginx-ru

Nginx-ru mailing list archive (nginx-ru@sysoev.ru)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re[2]: FR: accesskey patch

To: "Mykola S. Grechukh" <nginx-ru@xxxxxxxxx>
Subject: Re[2]: FR: accesskey patch
From: "Artem S. Povaluhin" <artem.povaluhin@xxxxxxxxx>
Date: Sat, 12 Jan 2008 17:45:59 +0300
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:date:from:x-mailer:reply-to:x-priority:message-id:to:subject:in-reply-to:references:mime-version:content-type:content-transfer-encoding; bh=2NMt/gMauh3azpaz6h9IC/PgVvqsyBaT3WiWRCqZU2s=; b=T2vR53XtXsJAbmUVY6wzeaUh1nEmZqhTOeGUJOmNevDduhPpWhFv1Nfx1vQnuIA0LDX+kggEFxhn1FlzCEqlI1GBzlh+4l80O3StyOmX90frDopxnwNXeA1TP+0EPNlzNJMuY8Qg0EkSbf2t52rjGW4Ke5OW8+XEZsa0mV9zA4U=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=date:from:x-mailer:reply-to:x-priority:message-id:to:subject:in-reply-to:references:mime-version:content-type:content-transfer-encoding; b=UvH7/ycIfB4ZETks+qzMovfUKh9g2QlWi2ZHIkRBBgckZ61Snf9HGmbR+U7fJ2HqrUhFeUm5i87dvyudajk9ls7Qhml12INFTfJDWP4fRadGq4eGPah9DRQ4TWMcjFxG5JCpOJrQlLplEHa8nYckmqzMRJUqCsTJVhLep9tofW8=
In-reply-to: <a4ab440f0801111244jbe8d6eap21347e57734ce986@xxxxxxxxxxxxxx>
References: <a4ab440f0710101329p389c50d6n39635842fcf20c6f@xxxxxxxxxxxxxx> <a4ab440f0710110924t22fce47fl8fbbd4f32cebed4b@xxxxxxxxxxxxxx> <fl72m8$g94$1@xxxxxxxxxxxxx> <47876063.3080406@xxxxxxxxxxx> <a4ab440f0801110434n3db93ba2vc188348e11f554d7@xxxxxxxxxxxxxx> <4787685F.5020804@xxxxxxxxxxx> <a4ab440f0801110603p52bfd021m4fbf8cbcca5c728@xxxxxxxxxxxxxx> <478785FF.6040504@xxxxxxxxxxx> <a4ab440f0801111244jbe8d6eap21347e57734ce986@xxxxxxxxxxxxxx>

Hello Mykola,

Friday, January 11, 2008, 11:44:39 PM, you wrote:

> 2008/1/11, pavel@xxxxxxxxxxx <pavel@xxxxxxxxxxx>:
>>
>>  Mykola S. Grechukh пишет:
>>  2008/1/11, pavel@xxxxxxxxxxx <>:
>>
>>
>>  Mykola S. Grechukh пишет:
>>  2008/1/11, pavel@xxxxxxxxxxx <>:
>>
>>
>>  Доброго времени Evan.
>>
>> Для лайти есть такой модуль mod_secdownload ->
>> http://trac.lighttpd.net/trac/wiki/Docs:ModSecDownload
>> Возможно-ли нечто подобное сделать?
>>
>>  это оно и есть, кроме timestamp (который я пока не придумал, как
>> проверять из md5 хэша).
>>
>>  Засада :(
>>
>>  это действительно критично? url можно привязать к ip клиента.
>>
>>  url должен быть такой:
>> http://host.tld/arch/328745a8dd89635121b5a5d9c3eff17e/47878578/path/to/file.txt

> ну. вопрос в том, какую информацию включать в хэш.

я понимаю это аналог mod_auth_token для apache, тогда так:

url = .../hash/ttl/...
hash = md5(secrеt + ip + ttl)

пришел запрос:
1. проверяешь целосность урла и ип адрес
2. проверяешь unixtime() > ttl

-- 
Best regards,
 Artem                            mailto:artem.povaluhin@xxxxxxxxx

References:
- FR: accesskey patch
  - From: Mykola S. Grechukh
- Re: FR: accesskey patch
  - From: Mykola S. Grechukh
- Re: FR: accesskey patch
  - From: Evan Miller
- Re: FR: accesskey patch
  - From: pavel@xxxxxxxxxxx
- Re: FR: accesskey patch
  - From: Mykola S. Grechukh
- Re: FR: accesskey patch
  - From: pavel@xxxxxxxxxxx
- Re: FR: accesskey patch
  - From: Mykola S. Grechukh
- Re: FR: accesskey patch
  - From: pavel@xxxxxxxxxxx
- Re: FR: accesskey patch
  - From: Mykola S. Grechukh

Prev by Date: Re[5]: FR: accesskey patch
Next by Date: Re: FR: accesskey patch
Previous by thread: Re: FR: accesskey patch
Next by thread: Re: FR: accesskey patch
Index(es):
- Date
- Thread